From owner-freebsd-questions@FreeBSD.ORG Sat Apr 17 08:49:29 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 024DF106564A for ; Sat, 17 Apr 2010 08:49:29 +0000 (UTC) (envelope-from jozsi.avadkan@gmail.com) Received: from mail-wy0-f182.google.com (mail-wy0-f182.google.com [74.125.82.182]) by mx1.freebsd.org (Postfix) with ESMTP id 524278FC12 for ; Sat, 17 Apr 2010 08:49:27 +0000 (UTC) Received: by wyf28 with SMTP id 28so277667wyf.13 for ; Sat, 17 Apr 2010 01:49:27 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:subject:from:to:content-type :date:message-id:mime-version:x-mailer:content-transfer-encoding; bh=rsrt9L6WEKpoAhcWbvvCzZr7QFRY+ARyQAfni/qbob8=; b=H64aPsJ6YsqHth+uv2Plg04wNxCijkHdx7+pEX6+1Uss7QtbeSQco2kZyWcX55J8pi Va3Z1LWWDwyBqPHPCak4O+zOttd8U9huJ4zhTTDjz/N19vGAH72QoUXwBkQQir0ALmcl lgkSs9oeZapBZhTUB+XgJp5dRYESLSo2nxYh8= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=subject:from:to:content-type:date:message-id:mime-version:x-mailer :content-transfer-encoding; b=QGjnlNcuLGTvmE7w/Q/hfPccidl9EGsCKMCxj1+Vcu4v1BoO7UljrQdg3zKXY3ornD Q8iOC6XqwIyjQesi9RvrXi2vqh2StKWg+FR6xISe5qJajdliWTZ4+DwiN2yFvLYwMsrP cXhEcESaNZRR+vZNYmOBsqpifWtnmGmqpvgLM= Received: by 10.216.90.135 with SMTP id e7mr289489wef.82.1271494167189; Sat, 17 Apr 2010 01:49:27 -0700 (PDT) Received: from [192.168.0.88] (92-249-239-8.pool.digikabel.hu [92.249.239.8]) by mx.google.com with ESMTPS id p37sm8253092gvf.13.2010.04.17.01.49.26 (version=SSLv3 cipher=RC4-MD5); Sat, 17 Apr 2010 01:49:26 -0700 (PDT) From: Jozsi Vadkan To: FreeBSD Mailing list Content-Type: text/plain Date: Sat, 17 Apr 2010 10:49:25 +0200 Message-Id: <1271494165.4881.28.camel@localhost> Mime-Version: 1.0 X-Mailer: Evolution 2.22.3.1 Content-Transfer-Encoding: 7bit Subject: crypt question/server hotel X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 17 Apr 2010 08:49:29 -0000 I want to put my server in a "server hotel". But: I don't trust my "server hotel owner". What can I do? I can crypt my partition/hdd's that contains the data. Ok. But: then my operating system will not be encrypted. Not Ok. If I crypt my operating system too, then when a reboot comes, I have to type a password to decrypt. But my server will be at a "server hotel" I can't directly use a keyboard [no service cpu]. What can I do [on technical side] to ensure a little more security to my server [e.g: crypt my partition/slice/whatever, that has the operating system, but without the "type password" ""problem""] Thank you for any tips/help.